Additional scan result of Farbar Recovery Scan Tool (x64) Version: 20.04.2019 01 Ran by Artur Machnicki (20-04-2019 18:28:33) Running from D:\Firefox Download Windows 7 Professional Service Pack 1 (X64) (2016-02-15 14:10:05) Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-3532491921-2668913716-1004277442-500 - Administrator - Disabled) Artur Machnicki (S-1-5-21-3532491921-2668913716-1004277442-1000 - Administrator - Enabled) => C:\Users\Artur Machnicki Guest (S-1-5-21-3532491921-2668913716-1004277442-501 - Limited - Disabled) ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Avira Antivirus (Enabled - Up to date) {88AE6B46-DC3C-455A-A21B-085F285A3546} AS: Avira Antivirus (Enabled - Up to date) {33CF8AA2-FA06-4AD4-98AB-332D53DD7FFB} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installed Programs ====================== (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) µTorrent (HKU\S-1-5-21-3532491921-2668913716-1004277442-1000\...\uTorrent) (Version: 3.5.5.45146 - BitTorrent Inc.) ACDSee Pro 3 (HKLM-x32\...\{1B280FAF-AE10-4E31-A41A-DB3917D651DC}) (Version: 3.0.355 - ACD Systems International Inc.) Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 19.010.20099 - Adobe Systems Incorporated) Adobe Flash Player 32 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 32.0.0.171 - Adobe) Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.171 - Adobe) AI Suite 3 (HKLM-x32\...\{CD36E28B-6023-469A-91E7-049A2874EC13}) (Version: 1.01.26 - ASUSTeK Computer Inc.) AO Help (HKLM-x32\...\{D25B5189-FD08-4985-BF86-A52457A7A0A5}) (Version: 1.2.23.231 - ASUS) Hidden AO Help (HKLM-x32\...\InstallShield_{D25B5189-FD08-4985-BF86-A52457A7A0A5}) (Version: 1.2.23.231 - ASUS) Asmedia ASM106x SATA Host Controller Driver (HKLM-x32\...\{DF6C3726-7E53-4772-9763-E9F147769F51}) (Version: 3.1.6.0000 - Asmedia Technology) Asmedia USB Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.24.0 - Asmedia Technology) ASUS Boot Setting (HKLM-x32\...\{7AAE9187-C24F-4073-A951-36C370E7A3A5}) (Version: 1.00.22 - ASUSTeK Computer Inc.) ASUS Product Register Program (HKLM-x32\...\{C87D79F6-F813-4812-B7A9-CCCAAB8B1188}) (Version: 1.0.030 - ASUSTek Computer Inc.) Avira (HKLM-x32\...\{9c4627af-2a2f-4e06-aa50-e0d70979e4b6}) (Version: 1.2.132.16752 - Avira Operations GmbH & Co. KG) Avira (HKLM-x32\...\{BE930E27-DF4B-44AF-8037-EB0A1D419787}) (Version: 1.2.132.16752 - Avira Operations GmbH & Co. KG) Hidden Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.45.1171 - Avira Operations GmbH & Co. KG) Avira Browser Safety (HKLM-x32\...\{9E10EA90-5E97-43B7-A246-FC7B4F5E9493}) (Version: 1.4.5.509 - Avira Operations GmbH & Co KG) CDDRV_Installer (HKLM\...\{0C826C5B-B131-423A-A229-C71B3CACCD6A}) (Version: 4.60 - Logitech) Hidden ComicRack v0.9.178 (HKLM\...\ComicRack) (Version: v0.9.178 - cYo Soft) Disk Unlocker (HKLM-x32\...\{AE4DB5AB-CD91-4D63-8AD5-33EBADCCC4F2}) (Version: 2.1.3 - ASUSTek Computer Inc.) DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 416.34 - NVIDIA Corporation) Hidden erLT (HKLM-x32\...\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}) (Version: 1.12.0117 - Logitech, Inc.) Hidden FastStone Image Viewer 5.9 (HKLM-x32\...\FastStone Image Viewer) (Version: 5.9 - FastStone Soft) foobar2000 v1.3.9 (HKLM-x32\...\foobar2000) (Version: 1.3.9 - Peter Pawlowski) Intel(R) Chipset Device Software (HKLM-x32\...\{60c073df-e736-4210-9c3a-5fc2b651cef3}) (Version: 10.1.1.7 - Intel(R) Corporation) Hidden Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1163 - Intel Corporation) Intel(R) Network Connections 20.2.3001.0 (HKLM\...\PROSetDX) (Version: 20.2.3001.0 - Intel) Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 4.0.0.36 - Intel Corporation) KhalInstallWrapper (HKLM\...\{F3F18612-7B5D-4C05-86C9-AB50F6F71727}) (Version: 4.60.122 - Logitech) Hidden LG Mobile Driver (HKLM-x32\...\{3F490D0E-3131-438C-BCF9-7549CB88DF41}) (Version: 4.0.4 - LG Electronics) LG PC Suite (HKLM-x32\...\LG PC Suite) (Version: 5.3.25.20150529 - LG Electronics) LG United Mobile Drivers (HKLM-x32\...\{4DE95ED9-0A29-4C4F-8463-35857CF9BA36}) (Version: 3.14.1 - LG Electronics) LG USB WML Modem Driver (HKLM-x32\...\{FBA0CA60-8BF2-4381-B819-74F020E165A9}) (Version: 1.0 - LG Electronics) Logitech Gaming Software 8.98 (HKLM\...\Logitech Gaming Software) (Version: 8.98.234 - Logitech Inc.) Logitech SetPoint (HKLM-x32\...\{F29B21BD-CAA6-445F-8EF7-A7E2B9D8B14E}) (Version: 4.60 - Logitech) Lucas Chess v. 10.08 (HKLM-x32\...\El ajedrez de Lucas_is1) (Version: - ) Mass Effect: Andromeda (HKLM-x32\...\Mass Effect: Andromeda_is1) (Version: - ) Microsoft .NET Framework 4.7.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.03062 - Microsoft Corporation) Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation) Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Mozilla Firefox 66.0.3 (x64 pl) (HKLM\...\Mozilla Firefox 66.0.3 (x64 pl)) (Version: 66.0.3 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 66.0.3.7038 - Mozilla) MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) NVIDIA 3D Vision Driver 416.34 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 416.34 - NVIDIA Corporation) NVIDIA Graphics Driver 416.34 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 416.34 - NVIDIA Corporation) NVIDIA HD Audio Driver 1.3.37.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.37.5 - NVIDIA Corporation) NVIDIA PhysX System Software 9.18.0907 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.18.0907 - NVIDIA Corporation) PotPlayer-64 bit (HKLM\...\PotPlayer64) (Version: 1.7.17508 - Kakao Corp.) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.92.115.2015 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7592 - Realtek Semiconductor Corp.) Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version: - Microsoft) Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation) Skype™ 7.18 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.18.112 - Skype Technologies S.A.) The Witcher 3: GotY Edition (HKLM-x32\...\The Witcher 3: GotY Edition_is1) (Version: - ) Turbo LAN v9.65 (HKLM\...\Turbo LAN) (Version: 9.65 - cFos Software GmbH, Bonn) WinZip 19.5 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240E9}) (Version: 19.5.11475 - WinZip Computing, S.L. ) ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ContextMenuHandlers1: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\Antivirus\shlext64.dll [2019-04-10] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) ContextMenuHandlers1: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2015-04-22] (WinZip Computing LLC -> WinZip Computing, S.L.) ContextMenuHandlers4: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2015-04-22] (WinZip Computing LLC -> WinZip Computing, S.L.) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2018-10-11] (NVIDIA Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\Antivirus\shlext64.dll [2019-04-10] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) ContextMenuHandlers6: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2015-04-22] (WinZip Computing LLC -> WinZip Computing, S.L.) ==================== Shortcuts & WMI ======================== (The entries could be listed to be restored or removed.) ==================== Loaded Modules (Whitelisted) ============== 2018-04-06 20:29 - 2018-04-06 20:29 - 000416627 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\Logitech Gaming Software\ssleay32.dll 2018-04-06 20:29 - 2018-04-06 20:29 - 002286747 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\Logitech Gaming Software\LIBEAY32.dll 2016-02-15 19:56 - 2016-02-15 19:56 - 001654784 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_8448b2bd328df189\MFC80U.DLL 2016-02-15 19:56 - 2016-02-15 19:56 - 000047104 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_bc20f59b0bdd1acd\MFC80ENU.DLL 2016-02-15 19:56 - 2016-02-15 19:56 - 000113664 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.6195_none_8a1dd9552ed7f8d8\ATL80.DLL 2016-02-15 17:17 - 2008-05-02 05:00 - 000077824 _____ () [File not signed] C:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe 2016-02-15 17:58 - 2015-05-14 10:18 - 001075712 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNoticeMonitor.exe 2016-02-15 17:58 - 2014-08-28 11:37 - 000033424 _____ (ASUSTeK Computer Inc. -> ) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotify_PCCtrl.exe 2016-02-15 16:20 - 2014-04-24 08:29 - 001360016 ____R (ASUSTeK Computer Inc. -> ) [File not signed] C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe 2016-02-15 17:57 - 2015-06-03 17:17 - 000108544 _____ (ASUS) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\ASACPI.DLL 2016-02-15 17:57 - 2015-06-03 17:17 - 000091648 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\Log4cxxWrapper.dll 2016-02-15 17:57 - 2015-06-03 17:17 - 002109952 _____ (Apache Software Foundation) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\log4cxx.dll 2016-02-15 17:57 - 2015-06-03 17:17 - 000676864 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\asacpiEx.dll 2016-02-15 17:57 - 2015-06-03 17:17 - 000147456 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\AssistFunc.dll 2016-02-15 17:58 - 2015-02-09 18:53 - 000872960 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\AI Charger+\AIChargerPlus.dll 2016-02-15 17:58 - 2015-05-21 23:57 - 001141248 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EasyUpdt.dll 2016-02-15 17:58 - 2015-08-28 14:48 - 001345024 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\Mobo Connect\MoboConnect.dll 2016-02-15 17:58 - 2015-08-28 14:48 - 000110592 _____ (ASUSTek Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\Mobo Connect\AndroidOpenAccessory.dll 2016-02-15 17:58 - 2014-07-25 16:46 - 001328128 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotice.dll 2016-02-15 17:58 - 2015-06-19 00:46 - 001087488 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\System Information\SystemInfo.dll 2016-02-15 17:58 - 2015-09-03 15:00 - 002695168 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\Thermal Radar 2\ThermalRadar2.dll 2016-02-15 17:58 - 2015-09-03 12:26 - 000221184 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\Thermal Radar 2\AsMultiLang.dll 2016-02-15 17:59 - 2015-03-12 15:48 - 000901120 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\USB 3.0 Boost\Express.dll 2016-02-15 17:59 - 2010-03-08 18:11 - 000221184 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\USB 3.0 Boost\AsMultiLang.dll 2016-02-15 17:59 - 2015-06-29 11:54 - 000997888 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\USB BIOS Flashback\BIOSFLK.dll 2016-02-15 17:59 - 2010-03-08 18:11 - 000221184 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\USB BIOS Flashback\AsMultiLang.dll 2015-09-03 05:26 - 2015-09-03 05:26 - 000201728 ____R (TODO: ) [File not signed] C:\Program Files (x86)\ASUS\VGA COM\1.00.17\AsusGpuTweak.dll 2016-02-15 17:58 - 2015-09-03 05:26 - 000053248 ____R () [File not signed] C:\Program Files (x86)\ASUS\VGA COM\1.00.17\Exeio.dll 2016-02-15 17:58 - 2015-09-03 05:26 - 000102400 ____R (ASUSTek Computer Inc.,) [File not signed] C:\Program Files (x86)\ASUS\VGA COM\1.00.17\EIO.DLL 2016-02-15 17:58 - 2015-09-03 05:26 - 000278528 ____R () [File not signed] C:\Program Files (x86)\ASUS\VGA COM\1.00.17\Vender.dll 2016-02-15 17:57 - 2015-05-08 08:26 - 000662016 ____R () [File not signed] C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMLib.dll 2016-02-15 17:57 - 2015-06-03 17:17 - 000221184 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\AsMultiLang.dll 2016-02-15 17:58 - 2014-03-28 14:45 - 000677888 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\Thermal Radar 2\asacpiex.dll 2016-02-15 17:59 - 2012-01-19 10:39 - 000028672 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\USB BIOS Flashback\PEInfo.dll 2016-02-15 17:57 - 2015-06-03 17:17 - 000208896 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\ImageHelper.dll 2016-02-15 17:57 - 2015-06-03 17:17 - 000253952 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\pngio.dll 2016-02-15 17:58 - 2015-07-15 16:06 - 000907264 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\Thermal Radar 2\DIP4FanCalibration.dll 2016-02-15 17:59 - 2010-02-25 15:01 - 000139264 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\USB BIOS Flashback\Aszip.dll 2016-02-15 17:59 - 2015-05-07 17:27 - 000237568 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\USB BIOS Flashback\EzULIB.dll 2016-02-15 17:58 - 2015-05-08 15:26 - 000662016 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\Thermal Radar 2\aaHMLib.dll 2016-02-15 17:58 - 2014-04-22 10:51 - 000108544 _____ (ASUS) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\Thermal Radar 2\asacpi.dll 2016-02-15 17:58 - 2015-07-02 17:07 - 003123200 _____ (ASUSTek COMPUTER INC.) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\Thermal Radar 2\asusnatnl.dll 2016-02-15 17:58 - 2015-08-31 15:21 - 000237568 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzULIB.dll 2016-02-15 17:58 - 2015-08-14 12:23 - 000621056 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\UIImprovmentHelper.dll 2016-02-15 17:58 - 2014-02-24 18:49 - 000208896 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\ImageHelper.dll 2016-02-15 17:17 - 2008-05-02 05:00 - 000057344 _____ (Logitech, Inc.) [File not signed] C:\Program Files\Logitech\SetPoint\x86\GameHook.dll 2016-02-15 17:17 - 2008-05-02 05:00 - 000038912 _____ (Logitech, Inc.) [File not signed] C:\Program Files\Logitech\SetPoint\x86\lgscroll.dll 2016-02-15 17:17 - 2008-05-02 05:00 - 000010752 _____ (Logitech, Inc.) [File not signed] C:\Program Files\Logitech\SetPoint\x86\IMHook.dll 2016-02-15 17:16 - 2008-05-02 05:00 - 000013824 _____ (Logitech, Inc.) [File not signed] C:\Program Files\Logitech\SetPoint\x86\AdobeHookDll.dll 2016-02-15 17:16 - 2008-05-02 05:00 - 000014336 _____ (Logitech, Inc.) [File not signed] C:\Program Files\Logitech\SetPoint\x86\AOLHookDll.dll 2016-02-15 17:17 - 2008-05-02 05:00 - 000069632 _____ (Logitech, Inc.) [File not signed] C:\Program Files\Logitech\SetPoint\x86\MessengerHook.dll 2016-02-15 17:17 - 2008-05-02 05:00 - 000012288 _____ (Logitech, Inc.) [File not signed] C:\Program Files\Logitech\SetPoint\x86\HookDll.dll 2016-02-15 17:17 - 2008-05-02 05:00 - 000023552 _____ (Logitech, Inc.) [File not signed] C:\Program Files\Logitech\SetPoint\x86\KEMHook.dll 2016-02-15 17:58 - 2013-11-20 11:10 - 000662016 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\aaHMLib.dll 2016-02-15 17:58 - 2013-07-02 11:40 - 000253952 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\pngio.dll 2016-02-15 17:58 - 2013-11-20 11:10 - 000221184 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\AsMultiLang.dll 2016-02-15 16:20 - 2019-04-20 18:12 - 000043816 _____ (ASUSTeK Computer Inc. -> ) [File not signed] C:\Program Files (x86)\ASUS\AXSP\1.02.00\PEbiosinterface32.dll 2016-02-15 16:20 - 2015-05-08 08:26 - 000104448 ____R () [File not signed] C:\Program Files (x86)\ASUS\AXSP\1.02.00\ATKEX.dll 2016-02-15 17:57 - 2015-05-08 08:26 - 000108544 ____R (ASUS) [File not signed] C:\Program Files (x86)\ASUS\AAHM\1.00.22\ASACPI.DLL 2016-02-15 17:57 - 2015-05-08 08:26 - 000677376 ____R (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AAHM\1.00.22\asacpiEx.dll 2015-09-03 05:26 - 2015-09-03 05:26 - 000108544 ____R (ASUS) [File not signed] C:\Program Files (x86)\ASUS\AsusFanControlService\1.06.26\AsAcpi.dll 2016-02-15 17:58 - 2015-09-03 05:26 - 000676864 ____R (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AsusFanControlService\1.06.26\asacpiEx.dll 2018-03-26 12:58 - 2018-03-26 12:58 - 000112128 _____ (Microsoft Corporation) [File not signed] C:\Windows\Microsoft.Net\assembly\GAC_32\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll ==================== Alternate Data Streams (Whitelisted) ========= ==================== Safe Mode (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) ==================== Hosts content: =============================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-14 04:34 - 2009-06-10 23:00 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path: C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Skype\Phone\ HKU\S-1-5-21-3532491921-2668913716-1004277442-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Artur Machnicki\AppData\Roaming\FastStone\FSIV\FSViewerWallPaper.bmp DNS Servers: 192.168.0.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall is enabled. ==================== MSCONFIG/TASK MANAGER disabled items == If an entry is included in the fixlist, it will be removed. ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation) FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation) FirewallRules: [TCP Query User{BEB31667-7176-4E1B-A8E1-8A35E853CE3E}C:\users\artur machnicki\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\artur machnicki\appdata\roaming\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [UDP Query User{F7D9697C-4D61-4378-BD12-B33D0614627A}C:\users\artur machnicki\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\artur machnicki\appdata\roaming\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{E8665DE3-F596-4CE3-B408-50392E5323D2}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{6A6009D5-35F6-419D-A118-28512E6640B1}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{50C23317-F357-4DF4-833A-CFF6DA004B59}] => (Allow) C:\Users\Artur Machnicki\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{4EDF9A75-7A33-4B9E-9F3C-C6332274D7E4}] => (Allow) C:\Users\Artur Machnicki\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [UDP Query User{6E04D20D-D34E-483B-AD54-8BB0BF73D189}D:\vikings wolves of midgard\vikings.exe] => (Block) D:\vikings wolves of midgard\vikings.exe No File FirewallRules: [TCP Query User{2AF472AE-4AAD-4E67-BD05-9680BE62838D}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.) FirewallRules: [UDP Query User{BE9386B0-5432-41AA-A57E-D35DBE9EAED8}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.) FirewallRules: [{81C26CE5-7832-49A9-B30A-9E90C369BB07}] => (Block) C:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.) FirewallRules: [{DA46DF9F-3849-4988-8584-2C50042C58A0}] => (Block) C:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.) FirewallRules: [TCP Query User{7DD0E47E-FF83-498D-9E67-7CB92152223F}C:\program files\comicrack\comicrack.exe] => (Block) C:\program files\comicrack\comicrack.exe () [File not signed] FirewallRules: [UDP Query User{7C6F1CC7-B42D-4E5A-9F74-180C4A23E501}C:\program files\comicrack\comicrack.exe] => (Block) C:\program files\comicrack\comicrack.exe () [File not signed] FirewallRules: [{BBDE5964-88EE-4759-8452-C33BC9C46183}] => (Allow) C:\Program Files (x86)\ASUS\AI Suite III\Thermal Radar 2\TUFDetectiveServer.exe (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) FirewallRules: [{532F5EA1-50A2-4B94-9C9E-4D90347B1E9B}] => (Allow) C:\Program Files (x86)\ASUS\AI Suite III\Thermal Radar 2\TUFDetectiveServer.exe (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) FirewallRules: [{99BD52DB-B2BA-48A7-AC41-1AA1DCF7B061}] => (Allow) C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotifyServer.exe (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) FirewallRules: [{82E9D883-B373-46C6-A791-C18106A039A3}] => (Allow) C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotifyServer.exe (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) ==================== Restore Points ========================= 09-04-2019 16:48:26 Windows Update 10-04-2019 09:34:22 Windows Update 18-04-2019 05:20:21 Scheduled Checkpoint ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (04/20/2019 06:14:45 PM) (Source: SideBySide) (EventID: 80) (User: ) Description: Activation context generation failed for "C:\Program Files (x86)\LG Electronics\LG PC Suite\LGPCSuite.exe".Error in manifest or policy file "" on line . A component version required by the application conflicts with another component version already active. Conflicting components are:. Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.24380_none_2b2053e245779417.manifest. Component 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.24380_none_e3731d0b30fb6b11.manifest. Error: (04/20/2019 06:06:46 PM) (Source: SideBySide) (EventID: 80) (User: ) Description: Activation context generation failed for "C:\Program Files (x86)\LG Electronics\LG PC Suite\LGPCSuite.exe".Error in manifest or policy file "" on line . A component version required by the application conflicts with another component version already active. Conflicting components are:. Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.24380_none_2b2053e245779417.manifest. Component 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.24380_none_e3731d0b30fb6b11.manifest. Error: (04/19/2019 04:06:46 PM) (Source: SideBySide) (EventID: 80) (User: ) Description: Activation context generation failed for "C:\Program Files (x86)\LG Electronics\LG PC Suite\LGPCSuite.exe".Error in manifest or policy file "" on line . A component version required by the application conflicts with another component version already active. Conflicting components are:. Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.24380_none_2b2053e245779417.manifest. Component 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.24380_none_e3731d0b30fb6b11.manifest. Error: (04/19/2019 09:43:32 AM) (Source: SideBySide) (EventID: 80) (User: ) Description: Activation context generation failed for "C:\Program Files (x86)\LG Electronics\LG PC Suite\LGPCSuite.exe".Error in manifest or policy file "" on line . A component version required by the application conflicts with another component version already active. Conflicting components are:. Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.24380_none_2b2053e245779417.manifest. Component 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.24380_none_e3731d0b30fb6b11.manifest. Error: (04/19/2019 09:40:47 AM) (Source: SideBySide) (EventID: 80) (User: ) Description: Activation context generation failed for "C:\Program Files (x86)\LG Electronics\LG PC Suite\LGPCSuite.exe".Error in manifest or policy file "" on line . A component version required by the application conflicts with another component version already active. Conflicting components are:. Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.24380_none_2b2053e245779417.manifest. Component 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.24380_none_e3731d0b30fb6b11.manifest. Error: (04/19/2019 09:40:47 AM) (Source: SideBySide) (EventID: 80) (User: ) Description: Activation context generation failed for "C:\Program Files (x86)\LG Electronics\LG PC Suite\LGPCSuite.exe".Error in manifest or policy file "" on line . A component version required by the application conflicts with another component version already active. Conflicting components are:. Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.24380_none_2b2053e245779417.manifest. Component 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.24380_none_e3731d0b30fb6b11.manifest. Error: (04/19/2019 09:39:37 AM) (Source: SideBySide) (EventID: 80) (User: ) Description: Activation context generation failed for "C:\Program Files (x86)\LG Electronics\LG PC Suite\LGPCSuite.exe".Error in manifest or policy file "" on line . A component version required by the application conflicts with another component version already active. Conflicting components are:. Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.24380_none_2b2053e245779417.manifest. Component 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.24380_none_e3731d0b30fb6b11.manifest. Error: (04/19/2019 09:39:37 AM) (Source: SideBySide) (EventID: 80) (User: ) Description: Activation context generation failed for "C:\Program Files (x86)\LG Electronics\LG PC Suite\LGPCSuite.exe".Error in manifest or policy file "" on line . A component version required by the application conflicts with another component version already active. Conflicting components are:. Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.24380_none_2b2053e245779417.manifest. Component 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.24380_none_e3731d0b30fb6b11.manifest. System errors: ============= Error: (04/20/2019 06:14:48 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: The Avira Scheduler service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 0 milliseconds: Restart the service. Error: (04/20/2019 06:06:46 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: The Avira Scheduler service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 0 milliseconds: Restart the service. Error: (04/20/2019 06:06:45 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: The Avira Web Protection service depends on the Avira Real-Time Protection service which failed to start because of the following error: After starting, the service hung in a start-pending state. Error: (04/20/2019 06:06:45 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: The Avira Mail Protection service depends on the Avira Real-Time Protection service which failed to start because of the following error: After starting, the service hung in a start-pending state. Error: (04/20/2019 06:05:38 PM) (Source: Service Control Manager) (EventID: 7022) (User: ) Description: The Avira Real-Time Protection service hung on starting. Error: (04/19/2019 04:06:48 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: The Avira Scheduler service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 0 milliseconds: Restart the service. Error: (04/19/2019 09:43:33 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: The Avira Scheduler service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 0 milliseconds: Restart the service. Error: (04/19/2019 09:40:02 AM) (Source: DCOM) (EventID: 10010) (User: ) Description: The server {3EB3C877-1F16-487C-9050-104DBCD66683} did not register with DCOM within the required timeout. ==================== Memory info =========================== Processor: Intel(R) Core(TM) i7-6700K CPU @ 4.00GHz Percentage of memory in use: 31% Total physical RAM: 16322.89 MB Available physical RAM: 11256.21 MB Total Virtual: 32643.93 MB Available Virtual: 26383.6 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:223.47 GB) (Free:123.76 GB) NTFS Drive d: () (Fixed) (Total:931.51 GB) (Free:508.6 GB) NTFS \\?\Volume{4ea7d546-d3ed-11e5-a068-806e6f6e6963}\ () (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: 7591DBFD) Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (MBR Code: Windows 7/8/10) (Size: 223.6 GB) (Disk ID: 7591DBF0) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=223.5 GB) - (Type=07 NTFS) ==================== End of Addition.txt ============================